Managing access to infrastructure components in a heavily regulated environment is a challenge.
At Lunar we belive in the freedom and responsibility of employees and thus rely on audit instead of lock down and because of this we need a simple and auditable way of granting and revoking access to our databases.
This talk will go through how Lunar manage developer’s access to our PostgreSQL databases using Kubernetes operators in a compliant manner.
I will get into the initial compliance requirements, validation of the solution from a compliance and developer focus and the implementation that we are using.

TALK 2:

101 - Getting started with Terraform and Custom Providers

By Mike Rostermund, Infrastructure Engineer at Humio

A very common approach to managing infrastructure configurations and changes is to leverage ‘infrastructure as code’ tools. This talk will be about the Terraform project, what it does, how it does it and why it is helpful. The first part of this talk will be covering the basics of using Terraform, so it doesn’t matter if you are not familiar with the project or have not used it before. I will be covering a few tips and tricks as well as things to watch out for when starting to adopt Terraform. Even though the combined list of official and community providers for Terraform is huge, but it may still fall short in some circumstances. To cover such use-cases, I will show what it takes to get started writing your own provider for Terraform.